$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/XjMMiN2NbUX5yBSFMUy0hxZFtEM.roa File: XjMMiN2NbUX5yBSFMUy0hxZFtEM.roa (raw, json) Hash identifier: BN0PPnWJHlSbKwF+C3E09ZvjGrnRXzbFQuLucjCHKsk= Subject key identifier: 5E:33:0C:88:DD:8D:6D:45:F9:C8:14:85:31:4C:B4:87:16:45:B4:43 Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Certificate serial: 0CE0 Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/XjMMiN2NbUX5yBSFMUy0hxZFtEM.roa Signing time: Mon 26 Aug 2024 05:27:04 +0000 ROA not before: Mon 26 Aug 2024 05:27:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24158 IP address blocks: 123.99.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3296 (0xce0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90 Validity Not Before: Aug 26 05:27:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5E330C88DD8D6D45F9C81485314CB4871645B443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fa:81:60:14:3e:ca:a8:4b:bd:2e:3d:e9:d1: bc:1f:61:e7:64:3a:47:4c:87:1c:e8:da:2d:26:2a: cc:89:2f:74:0b:0b:e4:f3:4a:03:e3:bf:ef:44:d8: 4f:d3:17:98:ed:fb:11:10:69:54:61:43:e6:f6:00: d1:b3:de:4d:b8:16:03:4a:ef:51:44:78:0d:d9:d0: 40:d2:4c:d4:fe:52:b3:0d:55:f9:a1:42:c7:54:21: e2:29:c1:f0:6b:84:87:27:cd:5b:71:9a:28:99:d5: 75:1e:34:33:e9:e8:5b:2a:bc:73:d2:35:32:a9:93: 1f:89:d6:80:f8:aa:c1:5e:12:b2:81:6e:40:06:81: 46:20:e7:66:ec:ed:ca:34:c8:82:f9:06:e1:ae:22: 43:2a:2b:f9:d7:11:c6:5a:67:4d:4c:0b:09:41:e2: ff:32:34:8b:99:a2:c5:34:02:2a:ed:df:a6:7a:e5: d2:49:c4:e2:13:d3:8d:56:9d:20:2f:e9:de:9d:bf: de:bb:39:1a:d4:c0:60:c5:90:cd:21:42:10:c2:ea: 4b:67:eb:e1:82:3f:c7:50:4a:36:18:e4:1d:6d:df: 10:3a:14:82:38:4c:b6:04:71:9f:0b:60:fc:ed:34: 9a:84:65:71:f5:33:69:59:ee:45:91:05:98:56:ce: 79:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:33:0C:88:DD:8D:6D:45:F9:C8:14:85:31:4C:B4:87:16:45:B4:43 X509v3 Authority Key Identifier: keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/XjMMiN2NbUX5yBSFMUy0hxZFtEM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.99.0.0/18 Signature Algorithm: sha256WithRSAEncryption ae:16:dd:4a:e3:cb:37:de:88:37:3f:61:0a:4c:eb:92:34:53: 6b:b1:6d:3b:94:9b:a7:2c:e5:f9:60:c4:49:9b:c4:75:06:56: 39:53:f7:ca:14:20:81:a7:27:7a:57:13:1b:55:e4:55:a5:51: 08:47:5b:6f:c9:d9:78:86:73:b3:41:b9:d0:c1:bc:6c:34:88: 36:a8:39:9b:bd:c0:56:54:b8:ae:e2:13:8b:52:8b:db:4f:98: d2:29:96:75:e2:0e:ae:70:3a:4d:c3:3a:65:39:e2:2b:dd:71: 56:27:a0:b6:9f:0a:fc:4a:9c:3f:d8:60:49:6b:16:ac:dd:18: 90:1f:f1:14:30:84:7d:9c:c8:d0:f7:09:56:ae:da:79:e3:96: 8c:05:06:42:61:5c:87:68:e5:79:36:6e:05:81:ff:66:f9:84: b4:dc:df:34:95:b9:1e:ac:72:09:3e:4b:78:ee:8a:45:6e:7d: 06:27:08:d9:3f:9f:13:38:77:a2:2a:5e:b6:f4:5d:6e:a8:15: b0:d9:0d:b8:bf:31:ab:f5:51:3f:35:fc:f6:37:ad:e0:a5:aa: ad:de:7f:6a:45:d0:88:fe:86:ea:4a:f9:87:71:a7:da:7f:34: 6f:03:c7:6b:d0:f2:8f:59:d8:2c:be:f7:6f:21:9a:ef:11:a3: e7:0c:a4:bd -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw NTI3MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVFMzMwQzg4REQ4RDZE NDVGOUM4MTQ4NTMxNENCNDg3MTY0NUI0NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM+oFgFD7KqEu9Lj3p0bwfYedkOkdMhxzo2i0mKsyJL3QLC+Tz SgPjv+9E2E/TF5jt+xEQaVRhQ+b2ANGz3k24FgNK71FEeA3Z0EDSTNT+UrMNVfmh QsdUIeIpwfBrhIcnzVtxmiiZ1XUeNDPp6FsqvHPSNTKpkx+J1oD4qsFeErKBbkAG gUYg52bs7co0yIL5BuGuIkMqK/nXEcZaZ01MCwlB4v8yNIuZosU0Airt36Z65dJJ xOIT041WnSAv6d6dv967ORrUwGDFkM0hQhDC6ktn6+GCP8dQSjYY5B1t3xA6FII4 TLYEcZ8LYPztNJqEZXH1M2lZ7kWRBZhWznm3AgMBAAGjggH6MIIB9jAdBgNVHQ4E FgQUXjMMiN2NbUX5yBSFMUy0hxZFtEMwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg 6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFL1hqTU1p TjJOYlVYNXlCU0ZNVXkwaHhaRnRFTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO MAwEAgABMAYDBAZ7YwAwDQYJKoZIhvcNAQELBQADggEBAK4W3UrjyzfeiDc/YQpM 65I0U2uxbTuUm6cs5flgxEmbxHUGVjlT98oUIIGnJ3pXExtV5FWlUQhHW2/J2XiG c7NBudDBvGw0iDaoOZu9wFZUuK7iE4tSi9tPmNIplnXiDq5wOk3DOmU54ivdcVYn oLafCvxKnD/YYElrFqzdGJAf8RQwhH2cyND3CVau2nnjlowFBkJhXIdo5Xk2bgWB /2b5hLTc3zSVuR6scgk+S3juikVufQYnCNk/nxM4d6IqXrb0XW6oFbDZDbi/Mav1 UT81/PY3reClqq3ef2pF0Ij+hupK+Ydxp9p/NG8Dx2vQ8o9Z2Cy+928hmu8Ro+cM pL0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org